June 16 OS X Dev Meeting

Participants:
Dave Pugh
Gretchen Kopmanis
Jeremy Hallum
Jeff Kopmanis (Math)
Dave Glaser
Todd Austin
Karen Pachla
Lewis Donofrio
Jim Zajkowski (LSI)



WWDC Debrief next Wednesday?
yes
bring a projector
send outline by Monday at noon of what you'll be talking about

Schedule for future meetings?
Keep it at Thursdays from 10-12

 
Matlab R14 SP2 works for Tiger....YES.  6/16/05 -jk

Do we need to make universal binaries for our unix tools?
Jeremy will try it with the unix tools, and document it.

Gretchen - New packagemaker docs (if Dave's preso doesn't fill the gaps)
Jeremy - Test logGen
Jeremy - DarwinPorts
Jeremy - UNIX pkgs
Jeremy - document universal binaries
Jeremy - Create a separate pkg to Add manpages to spotlight index path
Karen, Vlad - Entourage testing - need a CD key to install
Jeff: File enhancement request to add a tool to open manpages - DONE (6/16/05, issue# 4150672)
Jeff: Verify that tiger ARD firewalls open up 3283 and 5900 ports -- When I turned on ARD ipfw allowed tcp/udp 3283 and tcp/udp 5900 -- JimZ 
dpugh: Make Kerberized-Console default in install
dpugh: Make KFM-PAM by default
dpugh: Configure Spotlight to stay out of AFS
dpugh: Make Tiger NBI
dpugh: Update to Xcode2.1
dpugh: Software Update Server & plist & removal pkg (dpugh)
dpugh: should we re-vamp our directory services setup on the servers when we upgrade them to Tiger?
  Maybe use automatic replication?  Just connect to UMOD and use ACLs? Yes
dpugh: file enhancement request to have PlistBuddy added to Developer Tools
dsglaser: make new KeyAccess/KeyMobile packages
EVERYONE - Firewall UDP blocking - how's it working? -- I dumped the rules that my machine generated, down at the very bottom.  Looks reasonable to me.
EVERYONE - should we install the Addressbook plugin to hook into google maps?

SOFTWARE INCOMPATIBILITIES
- OpenAFS
- Kerberized PAM? (UNTESTED)
- our KeyAccess pkg - dsglaser will pkg new version
- SPSS
- Fireworks (only works as admin)
- Flash (only works as admin)
- Adobe Reader 6
- Groupcal

External Sources report problems with:
- Photoshop
- Virtual PC
- Virex

Showstoppers:
OpenAFS (for Math)
Root exploits (For everyone)

These are the rules that are turned on automatically when you enable the UDP blocking
(sudo ipfw list)
UDP rules that were on on my machine (JimZ):
20310 allow udp from any to any dst-port 53 in # dns
20320 allow udp from any to any dst-port 68 in # bootp
20321 allow udp from any 67 to me in           # bootp
20322 allow udp from any 5353 to me in         # multicast dns (bonjour)
20340 allow udp from any to any dst-port 137 in # netbios
20350 allow udp from any to any dst-port 427 in # svrloc
20360 allow udp from any to any dst-port 631 in # ipp
20370 allow udp from any to any dst-port 5353 in # multicast dns
22000 allow udp from any to any dst-port 123 in # ntp
30510 allow udp from me to any out keep-state
30520 allow udp from any to any in frag         # hmm questionable
35000 deny udp from any to any in